VMware vmnat.exe/vmnet-natd Multiple FTP Command Remote Overflow
Critical Nessus Plugin ID 20729
SynopsisIt is possible to execute code on the remote system.
DescriptionAccording to its version number, the VMware program on the remote host may allow an attacker to execute code on the system hosting the VMware instance.
The vulnerability can be exploited by sending specially crafted FTP PORT and EPRT requests.
To be exploitable, the VMware system must be configured to use NAT networking.
SolutionUpgrade to :
- VMware Workstation 5.5.1 or higher
- VMware Workstation 4.5.2 or higher
- VMware Player 1.0.1 or higher
- VMware GSX Server 3.2.1 or higher.